Java Security Solutions
  

Introduction

As mentioned in Chapter 4, there are many issues with exchanging keys, such as the man-in-the-middle attack. To ensure better protection in new versions of the Internet Protocol (IP) Ipv4 and Ipv6, the Internet Engineering Task Force (IETF) developed the IP security protocol (IPSec). The IPSec provides security services for authentication, message integrity, reply protection, confidentiality, and secure key exchange.

Note  

The Java implementation of IPSec can be found at the Jacob project at http:// sourceforge .net/projects/jacob .

Another protocol that encapsulates keys and authentication is the Simple Authentication and Security Layer (SASL). The SASL is not part of the IPSec but is used as an authentication protocol for applications like Lightweight Directory Access Protocol (LDAP).

Note  

The Java implementation of SASL using the Cryptix implementation can be found at http://sourceforge.net/projects/cryptix-sasl . Sun provides information on SASL at http://java.sun.com/products/jndi/tutorial/ldap/security/sasl.html .

  
Related

Категории

© amp.flylib.com,